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BACKGROUND 
Retired from the United States Air Force (2015) 
Position held while in the Air Force 


- Weapons load crew (F-15)— two man - Unit Deployment Manager 


- Weapons load crew (F-16) — one man - Squadron Training Manager 


- Noncommissioned Officer Unit Weapons Safety, Ground Safety, Flight Safety 


- Noncommissioned Officer in Charge Commanders Support Staff 


EDUCATION 
Associates in Applied Science (2011) — Community College of the Air Force 


Bachelors’ of Science in Cybersecurity (2015) — University of Manyland University College 


Bea UMUC 


University of Maryland 


Masters of Science in Cybersecurity (December 2017) - University of Manyland University College University College 


Strategic Plans NASA 
NASA intends to execute its strategic plan by achieving the following strategic goals: 
1. Expand the frontiers of knowledge, capability, and opportunity in space. 


By empowering the NASA community to: 

- expand human presence into the solar system 

- conduct research on the ISS 

- enable and utilize commercial capabilities 

- better understand the Sun and its effects of the solar system 

- understand the solar system better 

- discover how the universe works 

- utilize space technologies to advance the Nation’s capabilities 


2. Advance understanding of Earth and develop technologies to improve the quality of life on our home planet. 


By engaging the workforce and partners to: 

- advance aeronautics research 

- advance knowledge of Earth to improve life on it. 

- optimize agency technology for national benefit 

- advance STEM education and collaborate regarding the mission 


3. Serve the American public and accomplish our Mission by effectively managing our people, technical capabilities, and 
infrastructure. 


By working together to: 

- conduct NASA’s mission in an innovative work environment with a diverse and highly skilled work force 
- ensure that strategic, technical and programmatic capabilities are available and advanced 

- provide information technologies which are secure, effective, and affordable 

- ensure effective management of programs and operations while performing safely and successfully. 


Strategic Plans KSC 
KSC intends to execute its strategic plan by achieving the following strategic goals: 


Strategic Goal 1: Kennedy Space Center manages the Commercial Crew Program (CCP) that facilitates development of U.S. 
commercial crew space transportation to and from low Earth orbit and the ISS. This lets NASA continue crew rotations and execute 
science on the ISS, including some KSC plant research and biology experiments. KSC is developing ground systems and plans for 
Orion and SLS assembly and integrated test for the 2014 Orion test flight, the SLS missions, and beyond. KSC 1s also developing or 
maturing crosscutting and innovative technologies, including RESOLVE, Ka- BOOM, and IGODU. 


Strategic Goal 2: KSC optimizes Agency technology investments by leading ISRU technology development for multiple destinations, 
advancing research and technology through integrated testing in relevant environments, developing external payload carriers, and 
fostering innovative partnerships. KSC advances aeronautics research by developing innovative metal alloys to improve safety of 
spacecraft and aircraft. KSC collaborates with partners to advance STEM learning. Partners include K-12 schools, universities, the 
Florida Department of Energy, and youth and service organizations. 


Strategic Goal 3: KSC’s major transformation from a single customer to multi-customer launch complex is vital to the success of both 
NASA and commercial space industry. To support NASA and our partners’ success, KSC ensures and provides launch services and 
access to space for NASA missions. KSC continually evaluates and aligns its highly valued people, and programmatic and institutional 
capabilities. KSC implements rigorous and innovative safety, IT, and communication services to ensure quality and reliability of 
products. 


Strategic Plans Information Technology and Communications Services (IT) 
Vision: 
To be the IT services and solutions provider for the world’s preeminent launch complex 
Mission: 


The IT Directorate provides responsive, innovative, secure, and cost-effective IT services to enable Mission and Institutional 
customer and partner success. 


Strategic Goals: 
Govern all KSC IT products and services 
Maintain leading role as the KSC IT service provider 
Ensure a responsive, customer-focused end-to-end IT user experience for all stakeholders 
Proactively provide innovative and cost-effective solutions 
Enhance and strengthen information security 
Consolidate and enhance infrastructure and services in an effective and efficient manner 
Develop Enterprise Architecture practices in support of the Agency Information Resources Management Strategic Plan 
IT Objectives: 
Respond to 95% of actions prior to due date 
Meet with stakeholders quarterly to convey latest IT initiatives and seek customer feedback 


Resolve KSC Center I3P (operational/integration) issues with appropriate Service Office Provider and/or Service Integration 
Manager in a timely manner 


Adhere to Agency IT policies, guidelines, and procedures 
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IT-B INFORMATION TECHNOLOGY SECURITY OFFICE 
IT-B Mission: 


The IT Security Office is dedicated to providing superior information security services to the KSC/NASA customers and partners to 
ensure the confidentiality, integrity, and availability of KSC and NASA information and IT resources 


IT-B Vision: 


To become a model IT Security organization for the federal government in providing world-class IT security solutions to the KSC 
employees, customers, and partners. 


Goals and Objectives: 


1.Ensure and support a robust security architecture that meets NASA’s and KSC’s business needs. 

2.Educate all employees to recognize and prevent cyber security threats. 

3.Fully integrate information security considerations into the system development life cycle (SDLC). 

4.Provide innovative and cost-effective solutions to ensure a secured IT environment for customers and partners. 
5.Continue to support and develop Agency IT security solutions that satisfy the federal continuous monitoring requirements. 


The IT Security Office is responsible for IT Security planning, policy development and implementation, architecture, governance, and 
audit support. The Office has responsibility for ensuring Federal Information Security Management Act (FISMA) compliance including 
Center-wide IT Security reviews, assessments and vulnerability scans, Internet content monitoring, IT Security incident response and 
investigations, intrusion detection services, operation system configuration management, IT Security technical expertise, and contractor 
compliance insight. The Office manages the Network Security Perimeter (NSP) for the Center and the Agency Security Update System 
(ASUS), Enterprise Reporting, and NASA Security Assessment and Authorization Repository (NSAAR) services for the Agency. The 
Office also provides support to Center Relationship Managers (RM) and IT Security support personnel. The Chief Information Security 
Officer (CISO), Center Privacy Manager (CPM), and Assessment & Authorization Official are on staff, as well as the Agency ASUS 
Project Manager and (NSAAR) Project Manager. 


Duties 
SharePoint POC 
- Manages the SharePoint sites used by IT-B and Center personnel. Take input from individuals to update the content in order to provide 
useful information in a centralized location. 


Data At Rest (DAR) Waivers POC 
- As the primary point of contact for DAR waivers, tracked current waivers to ensure none expire. Work with the customer to correctly 
fill in requests and then route the completed forms to the required individuals. 


Incident Response Team member 
- Participated in table top exercise. Increased understanding of KSCs incident response posture. 
- Asabreach response team member, gained knowledge concerning KSCs handling of incidents. 


- My work in the IT-B office aids in ensuring Federal Information Security Management Act (FISMA) compliance. Which ties back to 
NASA’s goal of providing information technologies which are secure, effective, and affordable. 


Internal Network Monitoring Project 
-Working with fellow team members to evaluate hardware and software 
-Evaluation is taking place in a lab environment 


-Hardware being evaluated is the Interface Masters switch. 
-- Used for network data aggregation 


-Software being evaluated is the Security Onion Suite. 
-- Security Onion consists of the following components: 


Snort/Suricata — rule-based intrusion detection 
Bro - analysis-driven intrusion detection 
Netsniff-ng — for packet capture 

Sguil — used to view alerts 

Squert — used to view Sguil data 

ELSA — used to query logs 


-Additional software used: 
-- Wireshark — protocol analyzer 


-Working on internal network monitoring falls in line with current classes in intrusion detection and prevention as well as allows the use 
of principles and skills learned from previous degree. 


- Currently team members involved with the evaluation of hardware and software for internal monitoring are updating software and 
gaining familiarity with both the hardware and software. 


- Next step will be running simulated network traffic through the test system to ensure it will provide the necessary functionality. 
- After all tests have been completed the system will be deployed on the actual KSC network. 


- The system will then be adjusted to reduce false positives and false negatives. 
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Protocol Length Info 


66 58111 + 443 [ACK] Seq=1 Ack=1 Win=32768 Len=0 TSval=544262590 TSecr=167535508 
1314 80 + 60665 [ACK] Seq=1 Ack=1 Win=131 Len=1260 

60 53842 + 443 [ACK] Seq=1 Ack=1 Win=258 Len=2 

1314 8@ + 60665 [ACK] Seq=1261 Ack=1 Win=131 Len=126a 

60 443 + 64011 [ACK] Seq=1 Ack=1 Win=26@ Len=2 


1478 ESP (SPI=0xQee318c8) 


1314 80 + 60665 [ACK] Seq=2521 Ack=1 Win=131 Len=1260 
60 443 + 64011 [ACK] Seq=1 Ack=1635 Win=260 Len=2@ 


154 Standard query response Q@x7bb2 4 livedata.turner.com & 157.166. 249.67 A 157.166.238.237 4& 157.166.248.175 A 157.166. 239.38 OPT 


6@ 52015 + 443 [ACK] Seq=1 Ack=1 Win=9875 Len=2a 
6@ 63651 + 443 [ACK] Seq=1 Ack=1 Win=258 Len=a 


1464 [TCP segment of a reassembled PDU] 


66 443 + 60315 [ACK] Seq=1 Ack=1 Win=122 Len=@ TSval=2296516914 TSecr=953259121 


1464 Encrypted Data 
1464 [TCP segment of a reassembled PDU] 


66 8@ + 61763 [ACK] Seq=1 Ack=1 Win=345 Len=@ SLE=@ SRE=1 
1464 Encrypted Data 
1314 [TCP segment of a reassembled PDU] 


66 57365 + 443 [SYN] Seq=@ Win=8192 Len=@ MS5=1260 WS=256 SACK_PERM=1 
1514 80 + 49284 [ACK] Seq=1 Ack=1 Win=63 Len=1448 TSval=1664080926 TSecr=935973992 
1514 80 + 49284 [ACK] Seq=1449 Ack=1 Win=63 Len=1448 TSval=1694080926 TSecr=935973992 


476 1029 + 10515 Len=434 
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66 443 + 620300 [ACK] Seq=1 Ack=1 Win=85 Len=@ SLE=0 SRE=1 
1314 [TCP segment of a reassembled PDU] 
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282 [TCP segment of a reassembled PDU] 


60 443 + 64011 [ACK] Seq=1 Ack=4155 Win=260 Len=2 
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Frame 1: 66 bytes on wire (528 bits), 66 bytes captured (528 bits) 
Ethernet II, Src: Cisco _6e:8e:bf (00:23:33:6e:8e:bf), Dst: Cisco_el:7e:cO (e0:5f:b9:el:7e:cd) 
Internet Protocol Version 4, Src: 163.205.123.18, Dst: 23.62.189.184 
Transmission Control Protocol, Src Port: 58111, Dst Port: 443, Seq: 1, Ack: 1, Len: @ 


e@ 5f b9 el 7e c@ 2A 23 
{ 0@ 34 d4 f6 4@ 2a 3f 26 
bd b8 e2 ff @1 bb fb a6 
8@ 02 d@ fc 22 22 21 21 


63 4 


@ 7  ksc_20160107_162955 


33 6e 8e bf 28 22 45 22 
72 £7 a3 cd 7b 12 17 3e 
48 66 bl e7 ff 7a 82 12 
Q@8 Qa 20 72 c9 be 9 fc 


weer oH SMe weeks 


Packets: 2612646 * Displayed: 2612646 (100.0%) Load time: 1:37,405 


Profile; Default 


Using a program called Wireshark network activity can be captured. Shown is a capture of the internal network activity. 
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VIEWS 


DESTINATION COUNTRY type 


SANKEY DIAGRAM 


INTERVAL: 2016-06-09 00:00:00 -> 2016-06-09 23:59:59 (+00:00) 
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Shown is the Squert program, which can be used to view event data. 
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